cp-be
6c7f66fa31
CI / Canvas Deploy Reminder (push) Blocked by required conditions
Lint shellcheck (arm64 pilot) / shellcheck-arm64 (pilot) (push) Waiting to run
publish-workspace-server-image / build-and-push (push) Successful in 2m51s
Block internal-flavored paths / Block forbidden paths (push) Successful in 6s
CI / Detect changes (push) Successful in 8s
CI / Python Lint & Test (push) Successful in 10s
E2E Chat / detect-changes (push) Successful in 14s
E2E API Smoke Test / detect-changes (push) Successful in 16s
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (local) (push) Successful in 1m32s
E2E Staging Canvas (Playwright) / detect-changes (push) Successful in 13s
E2E Peer Visibility (literal MCP list_peers) / E2E Peer Visibility (push) Failing after 2m9s
E2E Staging SaaS (full lifecycle) / pr-validate (push) Successful in 49s
Handlers Postgres Integration / detect-changes (push) Successful in 6s
Harness Replays / detect-changes (push) Successful in 5s
Lint forbidden tenant-env keys / Scan workspace_secrets writers for forbidden env keys (push) Successful in 6s
Lint no tenant GITEA or GITHUB token write / Scan for repo-host token write into tenant workspace surface (push) Successful in 13s
Secret scan / Scan diff for credential-shaped strings (push) Successful in 9s
ci-required-drift / drift (push) Successful in 1m20s
E2E Staging External Runtime / E2E Staging External Runtime (push) Successful in 5m18s
E2E Staging SaaS (full lifecycle) / E2E Staging SaaS (push) Successful in 5m10s
CI / Canvas (Next.js) (push) Successful in 3s
CI / Shellcheck (E2E scripts) (push) Successful in 17s
E2E API Smoke Test / E2E API Smoke Test (push) Successful in 2m0s
E2E Staging Canvas (Playwright) / Canvas tabs E2E (push) Successful in 2s
Harness Replays / Harness Replays (push) Successful in 4s
Handlers Postgres Integration / Handlers Postgres Integration (push) Successful in 1m52s
CI / Platform (Go) (push) Failing after 4m42s
E2E Chat / E2E Chat (push) Successful in 4m30s
publish-workspace-server-image / Production auto-deploy (push) Failing after 18m43s
CI / all-required (push) Failing after 14m56s
Sweep stale AWS Secrets Manager secrets / Sweep AWS Secrets Manager (push) Successful in 8s
Sweep stale Cloudflare Tunnels / Sweep CF tunnels (push) Successful in 5s
Sweep stale e2e-* orgs (staging) / Sweep e2e orgs (push) Successful in 4s
Staging SaaS smoke (every 30 min) / Staging SaaS smoke (push) Successful in 4m47s
main-red-watchdog / watchdog (push) Successful in 1m57s
gate-check-v3 / gate-check (push) Successful in 25s
Continuous synthetic E2E (staging) / Synthetic E2E against staging (push) Successful in 6m19s
Co-authored-by: Molecule AI · cp-be <cp-be@agents.moleculesai.app> Co-committed-by: Molecule AI · cp-be <cp-be@agents.moleculesai.app>
149 lines
6.6 KiB
Bash
Executable File
149 lines
6.6 KiB
Bash
Executable File
#!/bin/bash
|
|
# Full E2E test for Claude Code workspace runtime
|
|
# Run from repo root after: docker compose up -d && docker build -t workspace:latest workspace/
|
|
#
|
|
# Prerequisites:
|
|
# - Platform running on localhost:8080
|
|
# - workspace:latest image built
|
|
# - .auth-token in workspace-configs-templates/claude-code-default/
|
|
|
|
set -euo pipefail
|
|
|
|
PLATFORM="http://localhost:8080"
|
|
PASS=0
|
|
FAIL=0
|
|
ERRORS=""
|
|
|
|
pass() { echo "PASS: $1"; PASS=$((PASS+1)); }
|
|
fail() { echo "FAIL: $1"; echo " expected: $2"; echo " got: $3"; FAIL=$((FAIL+1)); ERRORS="$ERRORS\n - $1"; }
|
|
|
|
check_contains() {
|
|
if echo "$3" | grep -qi "$2"; then pass "$1"; else fail "$1" "contains '$2'" "$3"; fi
|
|
}
|
|
|
|
# --- Health Check ---
|
|
echo "=== Claude Code E2E Tests ==="
|
|
echo ""
|
|
|
|
HEALTH=$(curl -s $PLATFORM/health)
|
|
check_contains "Platform healthy" '"status":"ok"' "$HEALTH"
|
|
|
|
# --- Verify auth token exists ---
|
|
if [ -f workspace-configs-templates/claude-code-default/.auth-token ]; then
|
|
pass "Auth token file exists"
|
|
else
|
|
fail "Auth token file exists" "file present" "missing"
|
|
echo "FATAL: No .auth-token. Write your Claude Code OAuth token to workspace-configs-templates/claude-code-default/.auth-token"
|
|
exit 1
|
|
fi
|
|
|
|
# --- Clean existing workspaces ---
|
|
for id in $(curl -s $PLATFORM/workspaces | python3 -c "import sys,json; [print(w['id']) for w in json.load(sys.stdin)]" 2>/dev/null); do
|
|
curl -s -X DELETE "$PLATFORM/workspaces/$id" > /dev/null
|
|
done
|
|
# shellcheck disable=SC2046 # Intentional word-split over container IDs
|
|
docker stop $(docker ps -q --filter "name=ws-") 2>/dev/null || true
|
|
# shellcheck disable=SC2046
|
|
docker rm $(docker ps -aq --filter "name=ws-") 2>/dev/null || true
|
|
|
|
# --- Create Org Chart ---
|
|
echo ""
|
|
echo "--- Create Workspaces ---"
|
|
|
|
# model is required at the Create boundary (CTO 2026-05-22 SSOT —
|
|
# feedback_workspace_model_required_no_platform_default_dynamic_credential_intake).
|
|
# Pass the same value the deleted DefaultModel("claude-code") returned.
|
|
ROOT=$(curl -s -X POST $PLATFORM/workspaces -H "Content-Type: application/json" \
|
|
-d '{"name":"Root Agent","role":"Company coordinator","runtime":"claude-code","model":"sonnet","tier":3}' \
|
|
| python3 -c "import sys,json; print(json.load(sys.stdin)['id'])")
|
|
check_contains "Create root workspace" "-" "$ROOT"
|
|
|
|
CHILD=$(curl -s -X POST $PLATFORM/workspaces -H "Content-Type: application/json" \
|
|
-d "{\"name\":\"Child Agent\",\"role\":\"Sub-team member\",\"runtime\":\"claude-code\",\"model\":\"sonnet\",\"tier\":2,\"parent_id\":\"$ROOT\"}" \
|
|
| python3 -c "import sys,json; print(json.load(sys.stdin)['id'])")
|
|
check_contains "Create child workspace" "-" "$CHILD"
|
|
|
|
# --- Wait for online ---
|
|
echo ""
|
|
echo "--- Wait for provisioning (40s) ---"
|
|
sleep 40
|
|
|
|
ROOT_STATUS=$(curl -s "$PLATFORM/workspaces/$ROOT" | python3 -c "import sys,json; print(json.load(sys.stdin)['status'])")
|
|
check_contains "Root is online" "online" "$ROOT_STATUS"
|
|
|
|
CHILD_STATUS=$(curl -s "$PLATFORM/workspaces/$CHILD" | python3 -c "import sys,json; print(json.load(sys.stdin)['status'])")
|
|
check_contains "Child is online" "online" "$CHILD_STATUS"
|
|
|
|
# --- Containers running ---
|
|
CONTAINER_COUNT=$(docker ps --filter "name=ws-" -q | wc -l | tr -d ' ')
|
|
if [ "$CONTAINER_COUNT" -eq 2 ]; then pass "2 containers running"; else fail "2 containers running" "2" "$CONTAINER_COUNT"; fi
|
|
|
|
# --- Upload system prompts ---
|
|
echo ""
|
|
echo "--- Upload System Prompts ---"
|
|
|
|
ROOT_UPLOAD=$(curl -s -X PUT "$PLATFORM/workspaces/$ROOT/files" \
|
|
-H "Content-Type: application/json" \
|
|
-d '{"files":{"system-prompt.md":"You are the Root Agent. You coordinate sub-teams. The company is called TestCorp."}}')
|
|
check_contains "Upload root prompt" "replaced" "$ROOT_UPLOAD"
|
|
|
|
CHILD_UPLOAD=$(curl -s -X PUT "$PLATFORM/workspaces/$CHILD/files" \
|
|
-H "Content-Type: application/json" \
|
|
-d '{"files":{"system-prompt.md":"You are a Child Agent under Root. You specialize in data analysis for TestCorp."}}')
|
|
check_contains "Upload child prompt" "replaced" "$CHILD_UPLOAD"
|
|
|
|
# Verify prompts in containers
|
|
sleep 2
|
|
ROOT_CONTAINER=$(docker ps --filter "name=ws-${ROOT:0:12}" -q | head -1)
|
|
CHILD_CONTAINER=$(docker ps --filter "name=ws-${CHILD:0:12}" -q | head -1)
|
|
|
|
ROOT_HAS_PROMPT=$(docker exec $ROOT_CONTAINER cat /configs/system-prompt.md 2>/dev/null | head -1)
|
|
check_contains "Root container has prompt" "Root Agent" "$ROOT_HAS_PROMPT"
|
|
|
|
CHILD_HAS_PROMPT=$(docker exec $CHILD_CONTAINER cat /configs/system-prompt.md 2>/dev/null | head -1)
|
|
check_contains "Child container has prompt" "Child Agent" "$CHILD_HAS_PROMPT"
|
|
|
|
# --- A2A Tests ---
|
|
echo ""
|
|
echo "--- A2A Communication ---"
|
|
|
|
ROOT_REPLY=$(curl -s -X POST "$PLATFORM/workspaces/$ROOT/a2a" \
|
|
-H "Content-Type: application/json" --max-time 90 \
|
|
-d '{"jsonrpc":"2.0","id":"t1","method":"message/send","params":{"message":{"role":"user","parts":[{"type":"text","text":"What company do you work for? One word."}]}}}')
|
|
ROOT_TEXT=$(echo "$ROOT_REPLY" | python3 -c "import sys,json; d=json.load(sys.stdin); p=d.get('result',{}).get('parts',[]); print(p[0]['text'] if p else d.get('error',{}).get('message','EMPTY'))" 2>/dev/null)
|
|
check_contains "Root knows company name" "TestCorp" "$ROOT_TEXT"
|
|
|
|
CHILD_REPLY=$(curl -s -X POST "$PLATFORM/workspaces/$CHILD/a2a" \
|
|
-H "Content-Type: application/json" --max-time 90 \
|
|
-d '{"jsonrpc":"2.0","id":"t2","method":"message/send","params":{"message":{"role":"user","parts":[{"type":"text","text":"What do you specialize in? One phrase."}]}}}')
|
|
CHILD_TEXT=$(echo "$CHILD_REPLY" | python3 -c "import sys,json; d=json.load(sys.stdin); p=d.get('result',{}).get('parts',[]); print(p[0]['text'] if p else d.get('error',{}).get('message','EMPTY'))" 2>/dev/null)
|
|
check_contains "Child knows its specialty" "data" "$CHILD_TEXT"
|
|
|
|
# --- Access Control ---
|
|
echo ""
|
|
echo "--- Access Control ---"
|
|
|
|
PARENT_CHILD=$(curl -s -X POST $PLATFORM/registry/check-access -H "Content-Type: application/json" \
|
|
-d "{\"caller_id\":\"$ROOT\",\"target_id\":\"$CHILD\"}" | python3 -c "import sys,json; print(json.load(sys.stdin).get('allowed','?'))")
|
|
check_contains "Parent→Child allowed" "True" "$PARENT_CHILD"
|
|
|
|
CHILD_PARENT=$(curl -s -X POST $PLATFORM/registry/check-access -H "Content-Type: application/json" \
|
|
-d "{\"caller_id\":\"$CHILD\",\"target_id\":\"$ROOT\"}" | python3 -c "import sys,json; print(json.load(sys.stdin).get('allowed','?'))")
|
|
check_contains "Child→Parent allowed" "True" "$CHILD_PARENT"
|
|
|
|
# --- Canvas ---
|
|
echo ""
|
|
echo "--- Canvas ---"
|
|
CANVAS=$(curl -s -o /dev/null -w "%{http_code}" http://localhost:3000)
|
|
check_contains "Canvas returns 200" "200" "$CANVAS"
|
|
|
|
# --- Summary ---
|
|
echo ""
|
|
echo "==============================="
|
|
echo " PASS: $PASS FAIL: $FAIL"
|
|
echo "==============================="
|
|
if [ $FAIL -gt 0 ]; then
|
|
echo -e "\nFailed tests:$ERRORS"
|
|
exit 1
|
|
fi
|